 <?php 
$username = $_POST['username'];

$password = $_POST['password'];

$username = 'trang';

include("opendb.php");

include("functions.php");

//$res = isValidUser($username,$password);

//if($res!=1) {

//exit;

//echo "0";

//}



$query = "select t.thumb, t.path, t.name, t.ID from post_templates t left join Users u on u.Username = '".$username."' where owner in ('', '21', u.ID)";
$result = mysql_query($query) or die ("SQL Error".mysql_error());

$xml = getXML($result);

echo $xml;

?>